Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-11-2014 Ran by samsung at 2014-11-15 16:48:24 Running from C:\Users\samsung\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Norton Security z kopią zapasową (Enabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB} AS: Norton Security z kopią zapasową (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0} FW: Norton Security z kopią zapasową (Disabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 18 Wheels of Steel: Extreme Trucker 2 (HKLM-x32\...\18 Wheels of Steel - Extreme Trucker 2/PL-Polish_is1) (Version: - City Interactive) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.) Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated) Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.4.402.265 - Adobe Systems Incorporated) Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.189 - Adobe Systems Incorporated) Adobe Flash Player 9 ActiveX (HKLM-x32\...\{786547F9-59BB-4FA3-B2D8-327FF1F14870}) (Version: 9.0.47.0 - Adobe Systems, Inc.) Adobe Illustrator CS5 (HKLM-x32\...\{9B97EC91-B3FD-4BFF-88FC-5345A26AC2E7}) (Version: 15.0 - Adobe Systems Incorporated) Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated) Adobe Reader 9.5.0 - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-A95000000001}) (Version: 9.5.0 - Adobe Systems Incorporated) Alien Shooter (HKLM-x32\...\Alien Shooter_is1) (Version: - Van.Hallgate@gmail.com) Applian FLV Player (HKLM-x32\...\Applian FLV Player2.0.24) (Version: 2.0.24 - Applian Technologies Inc.) Ashampoo Burning Studio 2012 v10.0.15 (HKLM-x32\...\Ashampoo Burning Studio 2012_is1) (Version: 10.0.15 - Ashampoo GmbH & Co. KG) Ashampoo Movie Studio v.1.0.17 (HKLM-x32\...\{91B33C97-54B3-9CEB-E911-246EDA9BDC9A}_is1) (Version: 1.0.17 - Ashampoo GmbH & Co. KG) Assassin's Creed Revelations (HKLM-x32\...\{33A22B2D-55BA-4508-B767-BF2E9C21A73F}) (Version: 1.00 - Ubisoft) AutoIt v3.3.6.1 (HKLM-x32\...\AutoItv3) (Version: - AutoIt Team) AxessManager (HKLM-x32\...\{B52D7A21-03E5-4C0C-82FA-FD8EB4C92149}) (Version: 1.1.2.1 - ) BatteryLifeExtender (HKLM-x32\...\{FFD0E594-823B-4E2B-B680-720B3C852588}) (Version: 1.0.11 - Samsung) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) BattleField 1942 (HKLM-x32\...\BattleField 1942) (Version: - ) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.0.0.0 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.1.7 - EA Digital Illusions CE AB) Bitwa o Śródziemie™ II (HKLM-x32\...\{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}) (Version: - ) Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.60.48.55 - Broadcom Corporation) Call of Duty(R) 2 (HKLM-x32\...\InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.00.0000 - ) Call of Duty(R) 2 (x32 Version: 1.00.0000 - ) Hidden CCleaner (HKLM\...\CCleaner) (Version: 3.22 - Piriform) ChargeableUSB (HKLM-x32\...\{92D50865-FC60-4EA8-BA7A-5581B0D13EFB}) (Version: 1.0.0.0 - SAMSUNG) CodeStuff Starter (HKLM-x32\...\CodeStuff Starter) (Version: 5.6.2.9 - CodeStuff) Colin McRae Rally 2 (HKLM-x32\...\{19B72AA9-985A-11D4-9C8A-00D0B75D1498}) (Version: - ) Commandos, Beyond the Call of Duty (HKLM-x32\...\InstallShield_{14193F8A-F485-444E-8ACA-287A74595D9D}) (Version: 1.20.0000 - Cenega) Commandos, Beyond the Call of Duty (x32 Version: 1.20.0000 - Cenega) Hidden Commandos: Behind Enemy Lines (HKLM-x32\...\InstallShield_{63378C93-A47B-45AF-AAB3-BA082992AF6B}) (Version: 1.00.0000 - Cenega) Commandos: Behind Enemy Lines (x32 Version: 1.00.0000 - Cenega) Hidden Couner-Strike 1.6 Patch v23 (HKLM-x32\...\Couner-Strike 1.6 Patch) (Version: v23 - Skilluj.com) Counter-Strike 1.6 (HKLM-x32\...\Counter-Strike 1.6) (Version: - ) Detektor Winampa (HKU\S-1-5-21-1270606213-4017362319-1625700523-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc) Detektor Winampa (HKU\S-1-5-21-1270606213-4017362319-1625700523-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) DiRT 3 Profile Import version 1.0 (HKLM-x32\...\{FCFCFCFC-FCFC-FCFC-FCFC-FCFCFCFCFCFC}_is1) (Version: 1.0 - ) DUNGEONS (HKLM-x32\...\{79A65475-2F7F-491C-BF2F-8D5C0AF0775C}) (Version: 1.0.0.1 - Realmforge Studios GmbH) EA Download Manager (x32 Version: 4.0.0.82 - Electronic Arts) Hidden Easy Content Share (HKLM-x32\...\{2DDC70C1-C77A-4D08-89D2-9AB648504533}) (Version: 1.0 - Samsung Electronics Co., LTD) Easy Display Manager (HKLM-x32\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 3.2 - Samsung Electronics Co., Ltd.) Easy Network Manager (HKLM-x32\...\{8732818E-CA78-4ACB-B077-22311BF4C0E4}) (Version: 4.4.7 - Samsung) Easy SpeedUp Manager (HKLM-x32\...\{EF367AA4-070B-493C-9575-85BE59D789C9}) (Version: 2.1.1.1 - Samsung Electronics Co.,Ltd.) EasyBatteryManager (HKLM-x32\...\{4A331D24-A9E8-484F-835E-1BA7B139689C}) (Version: 4.0.0.4 - Samsung) EasyFileShare (HKLM-x32\...\{EA76E65F-6679-495A-A8A6-42AD6602ED4C}) (Version: 1.0.11 - Samsung) ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB) ETDWare PS/2-X64 10.7.6.2_WHQL (HKLM\...\Elantech) (Version: 10.7.6.2 - ELAN Microelectronic Corp.) Far Cry (HKLM-x32\...\FarCry_is1) (Version: - Cenega Poland Sp. z o. o.) Fast Start (HKLM-x32\...\{77F45ECD-FAFC-45A8-8896-CFFB139DAAA3}) (Version: 2.2.0.0 - SAMSUNG) Google Chrome (HKU\S-1-5-21-1270606213-4017362319-1625700523-1000\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.) Google Chrome (HKU\S-1-5-21-1270606213-4017362319-1625700523-1001\...\Google Chrome) (Version: 28.0.1500.95 - Google Inc.) Grand Theft Auto Vice City (HKLM-x32\...\{4B35F00C-E63D-40DC-9839-DF15A33EAC46}) (Version: 1.00.000 - ) GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games) Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.) Hard Truck 18 Wheels of Steel (HKLM-x32\...\Hard Truck 18 Wheels of Steel) (Version: - ) Honorbuddy (HKU\S-1-5-21-1270606213-4017362319-1625700523-1000\...\{a3625ed8-33a9-4369-8436-8dbe6b46c49d}) (Version: 2.5.9001.716 - Bossland GmbH) Honorbuddy (x32 Version: 2.5.9001.716 - Bossland GmbH) Hidden HP Deskjet 1050 J410 series Badanie ulepszeń produktu (HKLM\...\{713CDBCF-4352-4AB8-A288-90CEE3F3A8D1}) (Version: 22.50.231.0 - Hewlett-Packard Co.) HP Deskjet 1050 J410 series Podstawowe oprogramowanie urządzenia (HKLM\...\{B2BF224C-9818-4942-BF11-8929859E53AE}) (Version: 22.50.231.0 - Hewlett-Packard Co.) HP Deskjet 1050 J410 series Pomoc (HKLM-x32\...\{5C90D8CF-F12A-41C6-9007-3B651A1F0D78}) (Version: 140.0.66.66 - Hewlett Packard) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2622 - Intel Corporation) Intel(R) PROSet/Wireless for Bluetooth(R) 3.0 + High Speed (HKLM\...\{2C0E6BD4-65B1-4E82-B2AC-43EFFC8F100C}) (Version: 15.0.0.0059 - Intel Corporation) Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{2ABA2E8D-23CF-418F-BC8F-2EC99FA51A3F}) (Version: 1.2.1.0608 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.5.1001 - Intel Corporation) Java 2 Runtime Environment, SE v1.4.1 (HKLM-x32\...\{CD0159C9-17FB-11D6-A76A-00B0D079AF64}) (Version: - ) Java Web Start (HKLM-x32\...\Java Web Start) (Version: - ) Java(TM) 6 Update 22 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216022FF}) (Version: 6.0.220 - Oracle) League of Legends (HKLM-x32\...\{918A9082-6287-4D25-9002-5E5D5E4971CB}) (Version: 1.02.0000 - Riot Games) LOTR The Return of the King tm (HKLM-x32\...\{6E298B0A-558C-4138-0096-740677B382CD}) (Version: - ) Mafia (HKLM-x32\...\{A6C20E31-E448-4DBB-B58F-C1915022AD0B}) (Version: 1.02 - ) Max Payne (HKLM-x32\...\{39930321-4C58-4B8B-BCBF-342698C9801D}) (Version: - ) Max Payne 2 (HKLM-x32\...\{EFE1AB94-5466-4B6E-BE31-FF4C115FD25D}) (Version: 1.0.97 - ) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Games for Windows - LIVE (HKLM-x32\...\{F97E3841-CA9D-4964-9D64-26066241D26F}) (Version: 3.3.24.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{8FB1B528-E260-451E-9B55-E9152F94B80B}) (Version: 3.2.3.0 - Microsoft Corporation) Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Movie Color Enhancer (HKLM-x32\...\{7F6F62F0-7884-4CFB-B86C-597A4A6D9C4D}) (Version: 1.0 - Samsung Electronics Co., Ltd.) Nail'd (HKLM-x32\...\{760CE496-A5DC-4E88-A88D-32868E921195}) (Version: 1.00 - Deep Silver) Need For Speed Underground (HKLM-x32\...\{A99968BE-C155-474C-0089-33239DEE1CE2}) (Version: - ) Need for Speed™ Carbon (HKLM-x32\...\{259C0ABB-A3B2-4D70-008F-BF7EE491B70B}) (Version: - ) NHL® 09 (HKLM-x32\...\{F2B5A2A7-2DF9-4361-8BD5-362714528B51}) (Version: 2.0.1.0 - Electronic Arts) Norton Security z kopią zapasową (HKLM-x32\...\NSBU) (Version: 22.0.2.17 - Symantec Corporation) NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation) NVIDIA Sterownik graficzny 266.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 266.72 - NVIDIA Corporation) Oprogramowanie Intel® PROSet/Wireless WiFi (HKLM\...\{DF7756DD-656A-45C3-BA71-74673E8259A9}) (Version: 15.00.0000.0642 - Intel Corporation) Origin (HKLM-x32\...\Origin) (Version: 9.2.1.4399 - Electronic Arts, Inc.) Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: - Pando Networks Inc.) Panel sterowania NVIDIA 266.72 (Version: 266.72 - NVIDIA Corporation) Hidden PDF Password Remover v3.1 (HKLM-x32\...\PDF Password Remover v3.1_is1) (Version: - VeryPDF.com Inc) PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden Plus Internet 2.5 (HKLM-x32\...\Plus Internet_is1) (Version: 2.5 - Polkomtel S.A.) Plus Internet Monitor wersja 1.0 (HKLM-x32\...\{64CFCC62-D81B-4A2B-81D6-169FBF95520A}_is1) (Version: 1.0 - Polkomtel sp. z o.o.) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.) Qtrax Player (HKLM-x32\...\{58C91689-85E3-4B25-ADEC-2697986DF817}) (Version: 1.00.0001 - Qtrax) Quake Live Mozilla Plugin (HKLM-x32\...\{FA66CFD7-0977-4C45-AACD-A8BB994B1A05}) (Version: 1.0.520 - id Software) RaidCall (HKLM-x32\...\RaidCall) (Version: 7.2.2-1.0.6555.3 - raidcall.com) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.44.421.2011 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6400 - Realtek Semiconductor Corp.) Samsung Recovery Solution 5 (HKLM-x32\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 5.0.0.9 - Samsung) Samsung Support Center (HKLM-x32\...\{F687E657-F636-44DF-8125-9FEEA2C362F5}) (Version: 1.1.24 - Samsung) Samsung Update Plus (HKLM-x32\...\{142D8CA7-2C6F-45A7-83E3-099AAFD99133}) (Version: 3.0.0.17 - Samsung Electronics Co., Ltd.) Skoki Narciarskie 2002 (HKLM-x32\...\{5E4EF02B-4C5F-4B35-AB77-41284456165A}) (Version: - ) Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-1270606213-4017362319-1625700523-1000\...\Spotify) (Version: 0.9.14.13.gba5645ad - Spotify AB) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.0.12 - Safer-Networking Ltd.) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) Stronghold 2 (HKLM-x32\...\{16D2C649-CBA8-44EE-B730-12584667D487}) (Version: 1.30.100 - Firefly Studios) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH) ToneMaker 1 (HKLM-x32\...\BloodyToneMaker) (Version: 14.01.0003 - Bloody) Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Update_DealPly (HKU\S-1-5-21-1270606213-4017362319-1625700523-1001\...\DealPly) (Version: - ) <==== ATTENTION VLC media player 2.0.3 (HKLM-x32\...\VLC media player) (Version: 2.0.3 - VideoLAN) Warcraft III (HKLM-x32\...\Warcraft III) (Version: - ) Wiedźmin 2 (HKLM-x32\...\{F0A209B7-7F85-4BDD-8F1F-B98EEAD9E04B}) (Version: 1.00.0000 - CD Projekt Red) Winamp (HKLM-x32\...\Winamp) (Version: 5.63 - Nullsoft, Inc) WinRAR 4.01 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH) Władca Pierścieni Bitwa o Śródziemie II – Król Nazguli (HKLM-x32\...\Władca Pierścieni Bitwa o Śródziemie II – Król Nazguli_is1) (Version: - ) Władca Pierścieni: Wojna o Pierścień wersja 1.5 (HKLM-x32\...\{DDCAA06F-D48D-4DEB-85B9-051E93C48309}_is1) (Version: 1.5 - O22y Inc.) Wolfenstein - Enemy Territory (HKLM-x32\...\Wolfenstein - Enemy Territory) (Version: - ) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) Zeus Pan Olimpu - Złota Edycja (HKLM-x32\...\{9F08B250-6805-4CBA-8014-6D927767A3F6}) (Version: 2.0 - VUGames) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-1270606213-4017362319-1625700523-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File CustomCLSID: HKU\S-1-5-21-1270606213-4017362319-1625700523-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-1270606213-4017362319-1625700523-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-1270606213-4017362319-1625700523-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File ==================== Restore Points ========================= ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2014-10-14 20:55 - 00000854 ____N C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 activate.adobe.com ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {068B69ED-089A-4695-B655-0D1C0FA5AAA5} - System32\Tasks\SamsungSupportCenter => C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe [2011-02-07] (SAMSUNG Electronics) Task: {0CDC3C71-E920-4FEF-9B9C-524670F2760D} - System32\Tasks\Leader Technologies\PowerRegister\Seagate NA4MB1X1 Product Registration (samsung) => C:\Users\samsung\AppData\Roaming\Leadertech\PowerRegister\Seagate NA4MB1X1 Product Registration.exe [2009-01-17] (Leader Technologies/Seagate) Task: {13220D9D-0FA6-4F4B-907A-EEA8D120A5E5} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Task: {1A2C7463-69F7-4267-A794-9C73869EFA4D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1270606213-4017362319-1625700523-1000Core => C:\Users\samsung\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-30] (Google Inc.) Task: {20B529A5-9D4A-4DAA-9329-EFC9CA17FEB7} - System32\Tasks\AdobeAAMUpdater-1.0-samsung-kompute-samsung => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated) Task: {26CAA725-2C4A-4CAF-9542-7A498483DF3E} - System32\Tasks\SUPBackground => C:\Program Files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe [2011-01-12] (Samsung Electronics) Task: {2D898927-5861-402C-9417-16A1BD28FC27} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe Task: {43E5A9C3-C484-44A2-8975-1B004DB45EF9} - System32\Tasks\Norton Security with Backup\Norton Error Processor => C:\Program Files (x86)\Norton Security with Backup\Engine\22.0.2.17\SymErr.exe [2014-09-08] (Symantec Corporation) Task: {4C1F839C-ADAB-46FF-908E-3CFBBE5D5FDF} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup Task: {6126E152-7ED4-403C-8F9A-6912C729B6CD} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe Task: {829E1B6A-6586-4B82-997C-98DFD5BBDC64} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Security with Backup\Engine\22.0.2.17\WSCStub.exe [2014-10-15] (Symantec Corporation) Task: {9159CC05-B4D5-4EE9-BE99-AF4D412D5B5D} - System32\Tasks\SmartRestarter => C:\Program Files\Samsung\SamsungFastStart\SmartRestarter.exe [2010-08-05] (Samsung Electronics Co., Ltd.) Task: {96F7E2AE-2CC3-43F5-A613-7462286D9466} - System32\Tasks\MovieColorEnhancer => C:\Program Files (x86)\Samsung\Movie Color Enhancer\MovieColorEnhancer.exe [2010-11-29] (Samsung Electronics Co., Ltd.) Task: {98C79385-A138-4DD4-B1CD-A306388165DD} - System32\Tasks\Norton Security with Backup\Norton Error Analyzer => C:\Program Files (x86)\Norton Security with Backup\Engine\22.0.2.17\SymErr.exe [2014-09-08] (Symantec Corporation) Task: {9D9C8821-6648-488A-9180-6C9A65A1608A} - System32\Tasks\EasySpeedUpManager => C:\Program Files (x86)\Samsung\EasySpeedUpManager\EasySpeedUpManager2.exe [2010-12-23] (Samsung Electronics) Task: {A2A2DEE2-9D3B-4F62-89B5-38CCFD81973C} - System32\Tasks\EasyDisplayMgr => C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe [2010-12-23] (Samsung Electronics Co., Ltd.) Task: {A2D303D3-9F4E-4E1A-8CA2-D49EADC312E4} - System32\Tasks\EasyBatteryManager => C:\Program Files (x86)\Samsung\EasyBatteryManager\EasyBatteryMgr4.exe [2010-07-20] (SAMSUNG Electronics co., LTD.) Task: {A3151EE0-879C-4EBB-BCDD-656B81E95BAD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1270606213-4017362319-1625700523-1000UA => C:\Users\samsung\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-30] (Google Inc.) Task: {D0E18047-FE90-4D17-9A5A-9A8AE2716C62} - System32\Tasks\WifiManager => C:\Program Files (x86)\Samsung\Easy Display Manager\WifiManager.exe [2011-01-04] (Samsung Electronics Co., Ltd.) Task: {D1E185EE-930D-4728-A28F-2CD81C2FD6EC} - System32\Tasks\HPCustParticipation HP Deskjet 1050 J410 series => C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPCustPartic.exe [2010-11-16] (Hewlett-Packard Co.) Task: {D2ECB5EE-29E3-440A-B7B5-20E05A2ED4D4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-08-22] (Piriform Ltd) Task: {E7823CCA-8659-4B84-94E8-7CD551CA91A0} - System32\Tasks\advSRS5 => C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe [2010-11-17] (SEC) Task: {FC91DBBD-955D-4AF3-BAAA-579B17781EE0} - System32\Tasks\BatteryLifeExtender => C:\Program Files (x86)\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [2010-12-18] (Samsung Electronics. Co. Ltd.) Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1270606213-4017362319-1625700523-1000Core.job => C:\Users\samsung\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1270606213-4017362319-1625700523-1000UA.job => C:\Users\samsung\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2012-09-09 21:28 - 2013-08-17 02:40 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2012-07-30 11:11 - 2012-01-10 12:12 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2014-11-09 21:44 - 2014-11-09 21:44 - 00613944 _____ () C:\Users\samsung\AppData\Roaming\Spotify\Data\SpotifyHelper.exe 2013-01-14 19:38 - 2012-11-13 14:06 - 00108960 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2013-01-14 19:38 - 2012-11-13 14:06 - 00416160 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl 2013-01-14 19:38 - 2012-11-13 14:06 - 00158624 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2013-01-14 19:38 - 2012-08-23 09:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll 2013-01-14 19:38 - 2012-11-13 14:06 - 00528288 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\JSDialogPack150.bpl 2012-07-30 11:36 - 2010-07-05 18:42 - 00203776 _____ () C:\Program Files (x86)\Samsung\Movie Color Enhancer\WinCRT.dll 2014-11-09 21:44 - 2014-11-09 21:44 - 36966968 _____ () C:\Users\samsung\AppData\Roaming\Spotify\Data\libcef.dll 2014-11-09 21:44 - 2014-11-09 21:44 - 00867896 _____ () C:\Users\samsung\AppData\Roaming\Spotify\Data\ffmpegsumo.dll 2014-11-09 21:44 - 2014-11-09 21:44 - 00886840 _____ () C:\Users\samsung\AppData\Roaming\Spotify\Data\libglesv2.dll 2014-11-09 21:44 - 2014-11-09 21:44 - 00108600 _____ () C:\Users\samsung\AppData\Roaming\Spotify\Data\libegl.dll 2012-07-30 11:32 - 2006-08-12 11:48 - 00049152 _____ () C:\Program Files (x86)\Samsung\Easy Display Manager\HookDllPS2.dll 2012-07-30 11:53 - 2010-05-07 22:22 - 01636864 _____ () C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\Resdll.dll 2014-09-09 21:05 - 2014-09-04 04:01 - 01098056 _____ () C:\Users\samsung\AppData\Local\Google\Chrome\Application\37.0.2062.120\libglesv2.dll 2014-09-09 21:05 - 2014-09-04 04:01 - 00174408 _____ () C:\Users\samsung\AppData\Local\Google\Chrome\Application\37.0.2062.120\libegl.dll 2014-09-09 21:05 - 2014-09-04 04:01 - 08577864 _____ () C:\Users\samsung\AppData\Local\Google\Chrome\Application\37.0.2062.120\pdf.dll 2014-09-09 21:05 - 2014-09-04 04:01 - 00331592 _____ () C:\Users\samsung\AppData\Local\Google\Chrome\Application\37.0.2062.120\ppGoogleNaClPluginChrome.dll 2014-09-09 21:05 - 2014-09-04 04:01 - 01660232 _____ () C:\Users\samsung\AppData\Local\Google\Chrome\Application\37.0.2062.120\ffmpegsumo.dll 2014-09-09 21:05 - 2014-09-04 04:01 - 14891848 _____ () C:\Users\samsung\AppData\Local\Google\Chrome\Application\37.0.2062.120\PepperFlash\pepflashplayer.dll 2006-10-26 13:56 - 2006-10-26 13:56 - 00757008 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL 2013-01-14 19:38 - 2012-11-13 14:06 - 00554400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\VirtualTreesDXE150.bpl ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Windows\system32\msln.exe:263f0f18e2fbc2d6f34198c26bb57ba9 ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" MSCONFIG\startupreg: ChomikBox => C:\Program Files (x86)\ChomikBox\chomikbox.exe MSCONFIG\startupreg: facemoods => "C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.3\facemoodssrv.exe" /md I MSCONFIG\startupreg: Google Update => "C:\Users\samsung\AppData\Local\Google\Update\GoogleUpdate.exe" /c MSCONFIG\startupreg: WinampAgent => "C:\Program Files (x86)\Winamp\winampa.exe" ========================= Accounts: ========================== Administrator (S-1-5-21-1270606213-4017362319-1625700523-500 - Administrator - Disabled) Gość (S-1-5-21-1270606213-4017362319-1625700523-501 - Limited - Disabled) samsung (S-1-5-21-1270606213-4017362319-1625700523-1000 - Administrator - Enabled) => C:\Users\samsung UpdatusUser (S-1-5-21-1270606213-4017362319-1625700523-1001 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Faulty Device Manager Devices ============= Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (11/15/2014 03:30:47 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (11/13/2014 09:32:37 PM) (Source: SideBySide) (EventID: 63) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "assemblyIdentity1". Błąd w pliku manifestu lub w pliku zasad "assemblyIdentity2" w wierszu assemblyIdentity3. Wartość "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" atrybutu "version" elementu "assemblyIdentity" jest nieprawidłowa. Error: (11/13/2014 07:26:33 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (11/13/2014 10:37:00 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1”. Błąd w pliku manifestu lub w pliku zasad „C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2” w wierszu C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3. Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest. Error: (11/13/2014 10:36:55 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1”. Błąd w pliku manifestu lub w pliku zasad „C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2” w wierszu C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3. Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest. Error: (11/13/2014 10:14:56 AM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (11/12/2014 09:18:46 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (11/12/2014 03:23:50 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (11/10/2014 08:24:28 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (11/09/2014 00:32:57 AM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. System errors: ============= Error: (11/15/2014 03:11:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Update SunriseBrowse z powodu następującego błędu: %%2 Error: (11/15/2014 03:11:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Symantec Eraser Service z powodu następującego błędu: %%2 Error: (11/15/2014 00:09:33 PM) (Source: volsnap) (EventID: 36) (User: ) Description: Wykonywanie kopii w tle woluminu C: zostało przerwane, ponieważ nie można powiększyć magazynu kopii w tle z powodu limitu wprowadzonego przez użytkownika. Error: (11/13/2014 07:26:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Update SunriseBrowse z powodu następującego błędu: %%2 Error: (11/13/2014 07:26:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Symantec Eraser Service z powodu następującego błędu: %%2 Error: (11/13/2014 10:14:57 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Update SunriseBrowse z powodu następującego błędu: %%2 Error: (11/13/2014 10:14:53 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Symantec Eraser Service z powodu następującego błędu: %%2 Error: (11/12/2014 09:15:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Update SunriseBrowse z powodu następującego błędu: %%2 Error: (11/12/2014 09:15:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Symantec Eraser Service z powodu następującego błędu: %%2 Error: (11/12/2014 03:23:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Update SunriseBrowse z powodu następującego błędu: %%2 Microsoft Office Sessions: ========================= CodeIntegrity Errors: =================================== Date: 2014-01-18 02:42:37.345 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\samsung\AppData\Local\Temp\PCIUtil.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-01-18 02:42:37.317 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\samsung\AppData\Local\Temp\PCIUtil.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-07-29 18:37:36.321 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\samsung\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-07-29 18:37:36.305 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\samsung\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-07-29 18:37:36.009 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-07-29 18:37:36.009 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz Percentage of memory in use: 57% Total physical RAM: 6056.29 MB Available physical RAM: 2590.68 MB Total Pagefile: 12110.71 MB Available Pagefile: 8165.77 MB Total Virtual: 8192 MB Available Virtual: 8191.79 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:271 GB) (Free:0.93 GB) NTFS Drive d: () (Fixed) (Total:403.87 GB) (Free:199.02 GB) NTFS Drive e: (Nowy) (CDROM) (Total:3.81 GB) (Free:0 GB) CDFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 6CD34883) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=271 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=403.9 GB) - (Type=OF Extended) Partition 4: (Not Active) - (Size=23.7 GB) - (Type=27) ==================== End Of Log ============================